Olivier Proust, CIPP/E



Partner, Privacy, Security and Information

Olivier co-heads the Technology, Outsourcing and Privacy department in our Brussels' office. As a French-qualified lawyer based in Brussels, Olivier is ideally located at the heart of Europe to monitor any legal developments in this fast-developing area of the law and to interact with representatives of the EU institutions and bodies. As a privacy law specialist, he advises organisations of all sizes and across business sectors on all aspects of the General Data Protection Regulation (GDPR) and French data protection law, including implementation of privacy policies and procedures, to conducting data protection impact assessments, or handling data subject requests. Olivier also frequently assists organisations with drafting, reviewing and negotiating data privacy clauses in customer or service agreements. Another area of his work consists in advising multinational organisations on what data transfer mechanisms to put in place when transferring personal data outside the EU (such as binding corporate rules or standard contractual clauses).

He advises organisations on how to handle data security incidents and when to notify the regulators or the individuals that are impacted by these incidents. Olivier usually advises Data Protection Officers directly on their privacy compliance strategies and often acts as an external DPO for many clients. Also, as the Data Protection Authorities become more resourceful, he assists companies during critical moments such as DPA inspections and advises them on how to respond to DPA inquiries.

Olivier advises clients in specific areas, such as consumer privacy, online e-privacy (i.e. direct marketing, cookies, etc.) and employee privacy rights (employee monitoring, whistleblowing, corporate investigations, e-discovery).

As a member of the IAPP (International Association of Privacy Professionals)'s Faculty, Olivier trains IAPP members each year on the CIPP/E certification program and speaks at many events that are organised by the IAPP. He also sits on MedTech Europe's Data Protection Committee as an external privacy expert.

He is an active contributor to our Privacy, Security & Information Blog and has written many articles both in French and English that have been published in law journals.


Contributions by Olivier Proust

  • Data Transfers Master Class
    Speaker at IAPP Europe Data Protection Congress 2022
  • Cross Border Transfers for the Caribbean: Does Schrems have any lessons?
    Speaker at Virtual Caribbean KnowledgeNet: July 19, 2022
  • Data Transfers Master Class
    Speaker at IAPP Global Privacy Summit 2022
  • Enforcement Lessons Learned
    Speaker at IAPP Data Protection Intensive: France 2022
  • Data Marketing and Data Protection: What Happens Next?
    Speaker at IAPP Europe Data Protection Congress 2021
  • Data Transfers Masterclass
    Speaker at IAPP Europe Data Protection Congress 2021
  • Préparation et intervention en cas d'atteinte à la protection des données
    Speaker at IAPP Data Protection Intensive: France 2020
  • How to Handle Data Subject Rights in a Data-Driven Society
    Speaker at IAPP Europe Data Protection Congress 2019
  • Tackling the DPIA: Formats and Foibles
    Speaker at IAPP Data Protection Intensive France 2019
  • Recent News on International Data Transfers
    Speaker at Paris KnowledgeNet: 11 February 2019
  • GDPR vs. U.S. Privacy Law: Friends or Foes?
    Speaker at IAPP Europe Data Protection Congress 2018
  • To BCR or to GDPR: That Is the Question
    Speaker at IAPP Europe Data Protection Intensive 2018
  • Member of Education Advisory Board 2018 - 2019
  • Data Mapping in GDPR: Lessons Learned Tackling Article 30 in Practice
    Speaker at IAPP Europe Data Protection Congress 2017